From e30ddba916252e2ac4321917c6fc859eb92abeb9 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 1 May 2023 19:59:31 +0000 Subject: [PATCH 1/2] build(deps): bump devops-actions/action-get-tag Bumps [devops-actions/action-get-tag](https://github.com/devops-actions/action-get-tag) from 3cd2dbc78daf43c7d0aa2896aeb5b52bbcc432d0 to 4e13c4ea459efa2988a10d5ff0f252bb097929ef. - [Release notes](https://github.com/devops-actions/action-get-tag/releases) - [Commits](https://github.com/devops-actions/action-get-tag/compare/3cd2dbc78daf43c7d0aa2896aeb5b52bbcc432d0...4e13c4ea459efa2988a10d5ff0f252bb097929ef) --- updated-dependencies: - dependency-name: devops-actions/action-get-tag dependency-type: direct:production ... Signed-off-by: dependabot[bot] --- .github/workflows/publishing.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/publishing.yml b/.github/workflows/publishing.yml index 8ba73bc..4f3d680 100644 --- a/.github/workflows/publishing.yml +++ b/.github/workflows/publishing.yml @@ -56,7 +56,7 @@ jobs: - name: Get tag value id: tag - uses: devops-actions/action-get-tag@3cd2dbc78daf43c7d0aa2896aeb5b52bbcc432d0 # v1 + uses: devops-actions/action-get-tag@4e13c4ea459efa2988a10d5ff0f252bb097929ef # v1 - name: Use tag run: echo ${{ steps.tag.outputs.tag }} From bb73b1e3cad3ff7c670fec454ebdf3d8d4a09fef Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 1 May 2023 19:59:45 +0000 Subject: [PATCH 2/2] build(deps): bump github/codeql-action from 2.2.9 to 2.3.2 Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.2.9 to 2.3.2. - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/github/codeql-action/compare/04df1262e6247151b5ac09cd2c303ac36ad3f62b...f3feb00acb00f31a6f60280e6ace9ca31d91c76a) --- updated-dependencies: - dependency-name: github/codeql-action dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] --- .github/workflows/codeql.yml | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml index 5535a9f..6dcde95 100644 --- a/.github/workflows/codeql.yml +++ b/.github/workflows/codeql.yml @@ -33,7 +33,7 @@ jobs: # Initializes the CodeQL tools for scanning. - name: Initialize CodeQL - uses: github/codeql-action/init@04df1262e6247151b5ac09cd2c303ac36ad3f62b # v2.2.9 + uses: github/codeql-action/init@f3feb00acb00f31a6f60280e6ace9ca31d91c76a # v2.3.2 # Override language selection by uncommenting this and choosing your languages # with: # languages: go, javascript, csharp, python, cpp, java, ruby @@ -41,7 +41,7 @@ jobs: # Autobuild attempts to build any compiled languages (C/C++, C#, Go, or Java). # If this step fails, then you should remove it and run the build manually (see below). - name: Autobuild - uses: github/codeql-action/autobuild@04df1262e6247151b5ac09cd2c303ac36ad3f62b # v2.2.9 + uses: github/codeql-action/autobuild@f3feb00acb00f31a6f60280e6ace9ca31d91c76a # v2.3.2 # ℹī¸ Command-line programs to run using the OS shell. # 📚 See https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#jobsjob_idstepsrun @@ -55,4 +55,4 @@ jobs: # make release - name: Perform CodeQL Analysis - uses: github/codeql-action/analyze@04df1262e6247151b5ac09cd2c303ac36ad3f62b # v2.2.9 + uses: github/codeql-action/analyze@f3feb00acb00f31a6f60280e6ace9ca31d91c76a # v2.3.2